{"id":384055,"date":"2026-01-01T04:58:08","date_gmt":"2026-01-01T04:58:08","guid":{"rendered":"https:\/\/www.newsbeep.com\/au\/384055\/"},"modified":"2026-01-01T04:58:08","modified_gmt":"2026-01-01T04:58:08","slug":"supply-chains-ai-and-the-cloud-the-biggest-failures-and-one-success-of-2025","status":"publish","type":"post","link":"https:\/\/www.newsbeep.com\/au\/384055\/","title":{"rendered":"Supply chains, AI, and the cloud: The biggest failures (and one success) of 2025"},"content":{"rendered":"<p>A third AI-related <a href=\"https:\/\/arstechnica.com\/security\/2025\/05\/researchers-cause-gitlab-ai-developer-assistant-to-turn-safe-code-malicious\/\" rel=\"nofollow noopener\" target=\"_blank\">proof-of-concept attack<\/a> that garnered attention used a prompt injection to cause GitLab\u2019s Duo chatbot to add malicious lines to an otherwise legitimate code package. A variation of the attack successfully exfiltrated sensitive user data.<\/p>\n<p>Yet another notable attack <a href=\"https:\/\/arstechnica.com\/security\/2025\/07\/flaw-in-gemini-cli-coding-tool-allowed-hackers-to-run-nasty-commands-on-user-devices\/\" rel=\"nofollow noopener\" target=\"_blank\">targeted<\/a> the Gemini CLI coding tool. It allowed attackers to execute malicious commands\u2014such as wiping a hard drive\u2014on the computers of developers using the AI tool.<\/p>\n<p>Using AI as bait and hacking assistants<\/p>\n<p>Other LLM-involved hacks used chatbots to make attacks more effective or stealthier. Earlier this <a href=\"https:\/\/arstechnica.com\/information-technology\/2025\/12\/previously-convicted-contractors-wiped-gov-databases-after-being-fired-feds-say\/\" rel=\"nofollow noopener\" target=\"_blank\">month<\/a>, two men were indicted for allegedly stealing and wiping sensitive government data. One of the men, prosecutors said, tried to cover his tracks by asking an AI tool \u201chow do i clear system logs from SQL servers after deleting databases.\u201d Shortly afterward, he allegedly asked the tool, \u201chow do you clear all event and application logs from Microsoft windows server 2012.\u201d Investigators were able to track the defendants\u2019 actions anyway.<\/p>\n<p>In <a href=\"https:\/\/arstechnica.com\/ai\/2025\/05\/man-pleads-guilty-to-using-malicious-ai-software-to-hack-disney-employee\/\" rel=\"nofollow noopener\" target=\"_blank\">May<\/a>, a man pleaded guilty to hacking an employee of The Walt Disney Company by tricking the person into running a malicious version of a widely used open source AI image-generation tool.<\/p>\n<p>And in August, Google researchers <a href=\"https:\/\/arstechnica.com\/security\/2025\/08\/google-warns-that-mass-data-theft-hitting-salesloft-ai-agent-has-grown-bigger\/\" rel=\"nofollow noopener\" target=\"_blank\">warned<\/a> users of the Salesloft Drift AI chat agent to consider all security tokens connected to the platform compromised following the discovery that unknown attackers used some of the credentials to access email from Google Workspace accounts. The attackers used the tokens to gain access to individual Salesforce accounts and, from there, to steal data, including credentials that could be used in other breaches.<\/p>\n<p>There were also multiple instances of LLM vulnerabilities that came back to bite the people using them. In <a href=\"https:\/\/arstechnica.com\/information-technology\/2025\/02\/copilot-exposes-private-github-pages-some-removed-by-microsoft\/\" rel=\"nofollow noopener\" target=\"_blank\">one case<\/a>, CoPilot was caught exposing the contents of more than 20,000 private GitHub repositories from companies including Google, Intel, Huawei, PayPal, IBM, Tencent, and, ironically, Microsoft. The repositories had originally been available through Bing as well. Microsoft eventually removed the repositories from searches, but CoPilot continued to expose them anyway.<\/p>\n","protected":false},"excerpt":{"rendered":"A third AI-related proof-of-concept attack that garnered attention used a prompt injection to cause GitLab\u2019s Duo chatbot to&hellip;\n","protected":false},"author":2,"featured_media":210713,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[256,254,255,64,63,105],"class_list":{"0":"post-384055","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-artificial-intelligence","8":"tag-ai","9":"tag-artificial-intelligence","10":"tag-artificialintelligence","11":"tag-au","12":"tag-australia","13":"tag-technology"},"_links":{"self":[{"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/posts\/384055","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/comments?post=384055"}],"version-history":[{"count":0,"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/posts\/384055\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/media\/210713"}],"wp:attachment":[{"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/media?parent=384055"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/categories?post=384055"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.newsbeep.com\/au\/wp-json\/wp\/v2\/tags?post=384055"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}